Re: Unprivilegued settings for FreeBSD kernel variables
Valdis.Kletnieks_at_vt.edu
Date: 06/18/04
- Previous message: Erik Sperling Johansen: "ircd-hybrid-7 / ircd-ratbox low-bandwidth DoS"
- In reply to: Manuel Bouyer: "Re: Unprivilegued settings for FreeBSD kernel variables"
- Next in thread: Wietse Venema: "Re: Unprivilegued settings for FreeBSD kernel variables"
- Reply: Wietse Venema: "Re: Unprivilegued settings for FreeBSD kernel variables"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Manuel Bouyer <bouyer@antioche.eu.org> Date: Fri, 18 Jun 2004 17:27:31 -0400
On Thu, 17 Jun 2004 13:28:59 +0200, Manuel Bouyer said:
> On Tue, Jun 15, 2004 at 08:42:23AM +0200, Radko Keves wrote:
> > [...]
> >
> > AFFECTED DISTRIBUTIONS:
> > FreeBSD 5.x i386
> > FreeBSD, OpenBSD, NetBSD is most likely also affected (investigation needed)
>
> NetBSD is not, a LKM can't be loaded if securelevel is > 0.
Note *very* carefully the fact that the statement "you can't load a LKM" is not
totally identical to "you can't cause an LKM to be in the kernel".
Hunt down the Phrack article on loading an LKM into a Linux kernel *that
doesn't even have module support*, and ask yourself if you're quite as sure
that there is *zero* vulnerability there....
- application/pgp-signature attachment: stored
- Previous message: Erik Sperling Johansen: "ircd-hybrid-7 / ircd-ratbox low-bandwidth DoS"
- In reply to: Manuel Bouyer: "Re: Unprivilegued settings for FreeBSD kernel variables"
- Next in thread: Wietse Venema: "Re: Unprivilegued settings for FreeBSD kernel variables"
- Reply: Wietse Venema: "Re: Unprivilegued settings for FreeBSD kernel variables"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
